Invention Grant
US07702693B1 Role-based access control enforced by filesystem of an operating system
有权
基于角色的访问控制由操作系统的文件系统执行
- Patent Title: Role-based access control enforced by filesystem of an operating system
- Patent Title (中): 基于角色的访问控制由操作系统的文件系统执行
-
Application No.: US10698498Application Date: 2003-10-30
-
Publication No.: US07702693B1Publication Date: 2010-04-20
- Inventor: Sanjay Aiyagari , Andrew G. Harvey , Hsuan-Chung Lee , Gregory Verissimo
- Applicant: Sanjay Aiyagari , Andrew G. Harvey , Hsuan-Chung Lee , Gregory Verissimo
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Hickman, Palermo, Truong & Becker LLP
- Main IPC: G04F17/00
- IPC: G04F17/00
Abstract:
A method and system for role-based access control enforced by an Operating System filesystem are provided. A file representing a resource is created and stored in the Operating System filesystem. A user requests access to the resource and provides user-identifying information and a resource identifier. An access identifier is created based on the user-identifying information and the resource identifier, and is formatted as the file attribute used by the Operating System to manage file access. A system call to the Operating System is made to perform an operation on the file representing the resource, where the system call uses the access identifier to gain access to the file. The user is granted access to the resource only if the operating system successfully performs the operation on the file representing the resource.
Information query
